- From: Tyler Close <tyler.close@gmail.com>
- Date: Wed, 25 Nov 2009 07:39:51 -0800
- To: HTTP Working Group <ietf-http-wg@w3.org>
AFAICT, HTTPbis says nothing about the Same Origin Policy (SOP), yet this policy is a major constraint on the behavior of many HTTP user agents, restricting what HTTP requests can be sent and what HTTP responses can be delivered. SOP is not defined by any standard. Should HTTPbis step up? --Tyler -- "Waterken News: Capability security on the Web" http://waterken.sourceforge.net/recent.html
Received on Wednesday, 25 November 2009 15:40:23 UTC